So I thought I had solved the problem with my mail server sending out spam messages by closing it as an open relay, but no the spam kept on pouring out.  I spent ages trying to work out where on earth it was coming from and eventually decided to look at the apache logs.  From there is was clear that a file called sm5so7.php was accessed every time a mail got sent out.  It turns out that there was a nasty exploit in zenphoto the gallery software that I run on the server.  More information can be found here:
  • http://www.zenphoto.org/news/alert-security-hole-in-zenphoto-
  • http://www.zenphoto.org/news/security-alert-part-2
  • http://www.zenphoto.org/support/topic.php?id=9951#post-58366
So for now I have shutdown the webserver and the junk mails have stopped streaming out.  Now I have just got to find the time to sort out the mess.  It doesn't look like a root exploit so it should be just the web stuff I have to clean up.


Popular posts from this blog

A census of amplified and overexpressed human cancer genes : Nature Reviews Cancer

RT @CancerInNorwich: 📢 Join us on Monday at 1pm for the next talk in our virtual seminar series. We will be hearing from Dr Wafa Al-Jamal from @QUBelfast, who will be talking about "Smart Nanomedicimes for Pancreatic Cancer". All are welcome to join via the MS Teams link: https://t.co/4xCYpjGuBZ https://t.co/EGyD4NAgeP

Universal Scrobbler